Vulnerabilities > Docman
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-19 | CVE-2007-0380 | Information Disclosure vulnerability in Docman 1.3Rc2 DocMan 1.3 RC2 allows remote attackers to obtain sensitive information (the full path) via unspecified vectors. | 5.0 |
2007-01-19 | CVE-2007-0379 | Cross-Site Scripting vulnerability in Docman 1.3Rc2 Cross-site scripting (XSS) vulnerability in DocMan 1.3 RC2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network docman | 6.8 |
2007-01-19 | CVE-2007-0378 | SQL-Injection vulnerability in Docman 1.3Rc2 Multiple SQL injection vulnerabilities in DocMan 1.3 RC2 allow attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |